Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I set up a FTP server on my computer with vsftpd. I am able to connect to the server with any computer that is connected to the internet on the same network as the server. But when I try to access the server from a computer on another network i geat the errors.
Connection timed out
No route to host
I tried to set up portforawding for ports 20 and 21 but that didn't work.
Does 'host [name of server]' (a the host name like "ftp.domainnam.e") return an IP address?
Does 'tcptraceroute [IP address of server] 21' show it reaches the FTP server?
If the IP address of the FTP server is known (and public) but the port closed then you may be experiencing NAT problems as per your "didn't work".
Quote:
Originally Posted by wil neeley
didn't work.
Show us what rules you set or your complete rule set ('sudo /sbin/iptables-save') if unsure because "doesn't work" means nothing.
this is from off network computer
21 ftp
tcptraceroute 192.168.1.125 21
Selected device eth0, address 128.119.116.251, port 52522 for outgoing packets
Tracing the path to 192.168.1.125 on TCP port 21 (ftp), 30 hops max
1 mor1-rt-n124a-1-vl551.gw.umass.edu (128.119.116.1) 0.588 ms 0.451 ms 0.428 ms
2 core1-rt-ae-1.gw.umass.edu (128.119.0.226) 0.398 ms 0.435 ms 0.387 ms
3 lgrc-rt-106-8-po-10.gw.umass.edu (128.119.0.233) 0.578 ms 0.527 ms 0.490 ms
4 128.119.2.197 0.641 ms 0.643 ms 0.575 ms
5 * * *
6 * * *
7 128.119.2.197 0.668 ms !H * *
20 ftp data
tcptraceroute 192.168.1.125 20
Selected device eth0, address 128.119.116.251, port 38930 for outgoing packets
Tracing the path to 192.168.1.125 on TCP port 20 (ftp-data), 30 hops max
1 mor1-rt-n124a-1-vl551.gw.umass.edu (128.119.116.1) 0.615 ms 0.504 ms 0.489 ms
2 core1-rt-ae-1.gw.umass.edu (128.119.0.226) 0.442 ms 0.435 ms 0.438 ms
3 lgrc-rt-106-8-po-10.gw.umass.edu (128.119.0.233) 0.606 ms 0.516 ms 0.572 ms
4 128.119.2.197 0.581 ms 0.729 ms 0.573 ms
5 128.119.2.197 0.601 ms !H * *
Last edited by wil neeley; 07-31-2012 at 12:47 PM.
from off network
port 20 ftp data
tcptraceroute 192.168.1.125 20
Selected device eth0, address 128.119.116.251, port 38930 for outgoing packets
Tracing the path to 192.168.1.125 on TCP port 20 (ftp-data), 30 hops max
1 mor1-rt-n124a-1-vl551.gw.umass.edu (128.119.116.1) 0.615 ms 0.504 ms 0.489 ms
2 core1-rt-ae-1.gw.umass.edu (128.119.0.226) 0.442 ms 0.435 ms 0.438 ms
3 lgrc-rt-106-8-po-10.gw.umass.edu (128.119.0.233) 0.606 ms 0.516 ms 0.572 ms
4 128.119.2.197 0.581 ms 0.729 ms 0.573 ms
5 128.119.2.197 0.601 ms !H * *
port 21 ftp
tcptraceroute 192.168.1.125 21
Selected device eth0, address 128.119.116.251, port 52522 for outgoing packets
Tracing the path to 192.168.1.125 on TCP port 21 (ftp), 30 hops max
1 mor1-rt-n124a-1-vl551.gw.umass.edu (128.119.116.1) 0.588 ms 0.451 ms 0.428 ms
2 core1-rt-ae-1.gw.umass.edu (128.119.0.226) 0.398 ms 0.435 ms 0.387 ms
3 lgrc-rt-106-8-po-10.gw.umass.edu (128.119.0.233) 0.578 ms 0.527 ms 0.490 ms
4 128.119.2.197 0.641 ms 0.643 ms 0.575 ms
5 * * *
6 * * *
7 128.119.2.197 0.668 ms !H * *
Tracing the path to 192.168.1.125 on TCP port 21 (ftp), 30 hops max
That IP address is in one of the ranges without valid routing on the Internet, namely 192.168.0.0/16 (http://www.team-cymru.org/Services/Bogons/). It is only routable inside your LAN.
Quote:
Originally Posted by wil neeley
I attached the configuration files for vsftpd
You set anonymous_enable=YES. Do not do that unless you know exactly what you are doing. If you must enable anonymous access at least set anon_upload_enable=NO and anon_mkdir_write_enable=NO, harden the machine, limit access through the firewall and ensure you monitor for abuse. Also enable and set a log file with xferlog_file=/var/log/vsftpd.log and log_ftp_protocol=YES or set syslog_enable=YES.
I don't think i'm using the umass ip. the computer that wasn't on my network was connected to UMASS wireless when it ran the traceroute program
Ah, yes, I overlooked that. But the router the FTP server at 192.168.1.125 resides behind does have a public IP address, right? If so and it's hardware what's the brand and type? OTOH if the router is a Linux machine what distribution and version?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.